daima

代码库/mall-admin/src/main/java/com/sock/mall/component/RestAuthenticationEntryPoint.java

@@ -0,0 +1,27 @@
+package com.macro.mall.component;
+
+import com.macro.mall.dto.CommonResult;
+import com.macro.mall.util.JsonUtil;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.web.AuthenticationEntryPoint;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+/**
+ * 当未登录或者token失效访问接口时，自定义的返回结果
+ * Created by macro on 2018/5/14.
+ */
+@Component
+public class RestAuthenticationEntryPoint implements AuthenticationEntryPoint {//密码输入错误
+    @Override
+    public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) throws IOException, ServletException {
+        response.setCharacterEncoding("UTF-8");
+        response.setContentType("application/json");
+        response.getWriter().println(JsonUtil.objectToJson(new CommonResult().unauthorized(authException.getMessage())));
+        response.getWriter().flush();
+    }
+}

代码库/mall-admin/src/main/java/com/sock/mall/component/RestfulAccessDeniedHandler.java

@@ -0,0 +1,29 @@
+package com.macro.mall.component;
+
+import com.macro.mall.dto.CommonResult;
+import com.macro.mall.util.JsonUtil;
+import org.springframework.security.access.AccessDeniedException;
+import org.springframework.security.web.access.AccessDeniedHandler;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+
+/**
+ * 当访问接口没有权限时，自定义的返回结果
+ * Created by macro on 2018/4/26.
+ */
+@Component
+public class RestfulAccessDeniedHandler implements AccessDeniedHandler{//没有访问权限
+    @Override
+    public void handle(HttpServletRequest request,
+                       HttpServletResponse response,
+                       AccessDeniedException e) throws IOException, ServletException {
+        response.setCharacterEncoding("UTF-8");
+        response.setContentType("application/json");
+        response.getWriter().println(JsonUtil.objectToJson(new CommonResult().forbidden(e.getMessage())));
+        response.getWriter().flush();
+    }
+}

代码库/mall-admin/src/main/java/com/sock/mall/component/WebLogAspect.java

@@ -0,0 +1,128 @@
+package com.macro.mall.component;
+
+import com.macro.mall.bo.WebLog;
+import com.macro.mall.util.JsonUtil;
+import com.macro.mall.util.RequestUtil;
+import io.swagger.annotations.ApiOperation;
+import net.logstash.logback.marker.Markers;
+import org.aspectj.lang.JoinPoint;
+import org.aspectj.lang.ProceedingJoinPoint;
+import org.aspectj.lang.Signature;
+import org.aspectj.lang.annotation.*;
+import org.aspectj.lang.reflect.MethodSignature;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.core.annotation.Order;
+import org.springframework.stereotype.Component;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.servlet.http.HttpServletRequest;
+import java.lang.reflect.Method;
+import java.lang.reflect.Parameter;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * 统一日志处理切面
+ * Created by macro on 2018/4/26.
+ */
+@Aspect//将java类定义为切面类
+@Component
+@Order(1)
+public class WebLogAspect {
+    private static final Logger LOGGER = LoggerFactory.getLogger(WebLogAspect.class);
+    private ThreadLocal<Long> startTime = new ThreadLocal<>();
+    /**
+     * 定义一个切入点
+     * ~第一个*代表任意修饰符及任意返回值
+     * ~第二个*代表在controller包或者子包
+     * ~第三个*代表任意方法
+     * ~..匹配任意数量的参数
+     */
+
+    @Pointcut("execution(public * com.macro.mall.controller.*.*(..))")
+    public void webLog() {
+    }
+
+    @Before("webLog()")
+    public void doBefore(JoinPoint joinPoint) throws Throwable {
+        startTime.set(System.currentTimeMillis());
+    }
+
+    @AfterReturning(value = "webLog()", returning = "ret")
+    public void doAfterReturning(Object ret) throws Throwable {
+    }
+
+    @Around("webLog()")
+    public Object doAround(ProceedingJoinPoint joinPoint) throws Throwable {
+        //获取当前请求对象
+        ServletRequestAttributes attributes = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
+        HttpServletRequest request = attributes.getRequest();
+        //记录请求信息(通过logstash传入elasticsearch)
+        WebLog webLog = new WebLog();
+        Object result = joinPoint.proceed();
+        Signature signature = joinPoint.getSignature();
+        MethodSignature methodSignature = (MethodSignature) signature;
+        Method method = methodSignature.getMethod();
+        if (method.isAnnotationPresent(ApiOperation.class)) {
+            ApiOperation log = method.getAnnotation(ApiOperation.class);
+            webLog.setDescription(log.value());
+        }
+        long endTime = System.currentTimeMillis();
+        webLog.setBasePath(RequestUtil.getBasePath(request));
+        webLog.setIp(request.getRemoteUser());
+        webLog.setMethod(request.getMethod());
+        webLog.setParameter(getParameter(method, joinPoint.getArgs()));
+        webLog.setResult(result);
+        webLog.setSpendTime((int) (endTime - startTime.get()));
+        webLog.setStartTime(startTime.get());
+        webLog.setUri(request.getRequestURI());
+        webLog.setUrl(request.getRequestURL().toString());
+        Map<String,Object> logMap = new HashMap<>();
+        logMap.put("url",webLog.getUrl());
+        logMap.put("method",webLog.getMethod());
+        logMap.put("parameter",webLog.getParameter());
+        logMap.put("spendTime",webLog.getSpendTime());
+        logMap.put("description",webLog.getDescription());
+        //        LOGGER.info("{}", JsonUtil.objectToJson(webLog));
+        LOGGER.info(Markers.appendEntries(logMap),JsonUtil.objectToJson(webLog));
+        return result;//处理完请求，返回内容
+    }
+
+    /**
+     * 根据方法和传入的参数获取请求参数
+     */
+    private Object getParameter(Method method, Object[] args) {
+        List<Object> argList = new ArrayList<>();//ArrayList[]是LIst[Object]的子类
+        Parameter[] parameters = method.getParameters();
+        for (int i = 0; i < parameters.length; i++) {
+            RequestBody requestBody = parameters[i].getAnnotation(RequestBody.class);//getAnnotation用于返回元素的指定类型的注释
+            if (requestBody != null) {//对应Http请求body不为空
+                argList.add(args[i]);//增加
+            }
+            RequestParam requestParam = parameters[i].getAnnotation(RequestParam.class);
+            if (requestParam != null) {//请求参数不为空
+            	Map<String, Object> map = new HashMap<>();  //map容器
+                String key = parameters[i].getName();//获取名称
+                if (!StringUtils.isEmpty(requestParam.value())) {//值不空，key返回参数值
+                    key = requestParam.value();
+                }
+                map.put(key, args[i]);//将argue[i]放入key中
+                argList.add(map);//增加一个map，map中放着i=n时的arg值
+            }
+        }
+        if (argList.size() == 0) {//长度为0时，返回空
+            return null;
+        } else if (argList.size() == 1) {//长度为1时，返回整张表的值
+            return argList.get(0);
+        } else {
+            return argList;
+        }
+    }
+}